RTS
RTS on classification of major incidents and significant cyber threats
Welcome to our dedicated resource for the Regulatory Technical Standards (RTS) that supplement DORA. Here, we delve into the "RTS on classification of major incidents and significant cyber threats", which we refer to as the “ICT incident classification” or simply “IIC” for brevity.
This RTS shall enter into force on the twentieth day following that of its publication in the Official Journal of the European Union, as is stated in Article 13.
As outlined on dora-info.eu, please note that the information provided here is presented as-is and should not be considered an authoritative source. For authoritative guidance, we encourage you to consult the Official Journal of the European Union.
Our commitment is to continuously enhance this platform, improving readability and navigation for your convenience. Stay updated on our progress by following us on LinkedIn, where we announce new features. If you have any questions or suggestions, please feel free to reach out to us at dora@springflod.se.
Table of Contents
Preamble
1 – 18
Recitals
Chapter I
Classification criteria
Article 1
Clients, financial counterparts and transactions
Article 2
Reputational impact
Article 3
Duration and service downtime
Article 4
Geographical spread
Article 5
Data losses
Article 6
Criticality of services affected
Article 7
Economic impact
Chapter II
Major incidents and materiality thresholds
Article 8
Major incidents
Article 9
Materiality thresholds for determining major incidents
Chapter III
Significant Cyber threats
Article 10
High materiality thresholds for determining significant cyber threats
Chapter IV
Relevance of major incidents to competent authorities in other Member States and details of reports to be shared with other competent authorities
Article 11
Relevance of major incidents to competent authorities in other Member States
Article 12
Details of major incidents to be shared with other competent authorities
Chapter V
Final provisions
Article 13
Entry into force